Satellite Cloud¶
What is Satellite Cloud¶
Wistron's Cloud-Native infrastructure is built upon a hybrid cloud model. Satellite Cloud is a critical infra type that enables site-local deployment of Cloud-Native apps. It is built with RKE2, hosted on top of a concise set of on-premise physical / virtual machines controlled and monitored centrally, and require minimum effort for local site IT to maintain.
How to use this guidebook¶
This guidebook provides an in-depth discussion on the key design decisions in each layer of the Satellite Cloud stack, including hardware (server, storage), container orchestrator, platform services and operating model. It also includes key operation topics like Disaster Recovery (DR), etc.
This guidebook is the Single-Source-of-Truth for any key design decisions of the Satellite Cloud (e.g. Use Longhorn as persistent storage). CCoE COG should use this as a reference when building the Satellite Cloud. Any updates to the key decisions should also be reflected in this guidebook.
How to contribute¶
Clone this repository, update the content and raise a Merge Request (MR).
Satellite deployment process¶
| 序号 | 角色 | OS | 数量 | 作用 |
|---|---|---|---|---|
| 1 | Ansible | Rocky Linux 9.5 or Ubuntu 22.04 | 1 | 使用Ansible自动化部署 |
| 2 | Gitlab | Ubuntu 22.04 | 1 | 同步总部Gitlab repo,供Local Site K8S集群拉取repo,减少带宽,提升部署速度 |
| 3 | Harbor | Ubuntu 22.04 | 1 | 与总部harbor设定proxy cache,拉取总部harbor缓存到Local harbor,减少带宽,提升拉取速度 |
| 4 | Rancher | Ubuntu 22.04 | 3 | K8S管理平台 |
| 5 | K8S Master | Ubuntu 22.04 | 3 | K8S集群的控制节点 |
| 6 | K8S Worker | Ubuntu 22.04 | 3 | K8S集群的工作节点,具体节点数量视业务情况而定 |
| 7 | Minio | Ubuntu 22.04 | 1 | 存放产线使用的image,备份客人通过B2B 进来的资料,送出去给客人数据 |
| 8 | Windows Server | Windows Server 2022 | 1 | OAKTesterWebService,Tester.WebService |
| 9 | Nifi | Ubuntu 22.04 | 1 | 数据同步,如果已经存在SFCS nifi,可共享,无需重新搭建,具体情况而定 |
| Index | Action Items |
|---|---|
| 1 | 架构和资源确认 |
| 1.1 | 确认WiMES架构 |
| 1.2 | 确认硬件资源: 1.Rancher Cluster 3台Node 2.K8S Cluster:3台Master Node+3台Worker Node(最低Node数量,后续根据业务量添加Node) 3.周边环境1台Ansible+1台Gitlab+1台Harbor+Minio+Windows Server(Minio和Windows Server根据规划是否By Plant Code建置) |
| 1.3 | 确认网络资源: 1.10G网络 2.A10交换机 |
| 2 | 搭建准备 |
| 2.1 | 规划WiMES网段(网络Team协助) |
| 2.2 | L4 VIP IP申请:1.Rancher cluster VIP IP 2.K8S worker node cluster VIP IP |
| 2.3 | OA/SFC DNS域名解析申请:Harbor/Gitlab/Rancher/K8S/Minio 域名 |
| 3 | Ansible搭建 (如已部署则跳过该步骤) |
| 3.1 | 安装OS: 参考 |
| 3.2 | Ansible安装部署 |
| 4 | Gitlab搭建 |
| 4.1 | OS安装及OS Tunning |
| 4.2 | Gitlab安装及同步设定 |
| 5 | Harbor搭建 |
| 5.1 | OS安装及OS Tunning |
| 5.2 | Harbor安装及Proxy cache设定 |
| 6 | Rancher搭建 |
| 6.1 | OS安装及OS Tunning |
| 6.2 | Rancher安装 |
| 7 | K8S集群搭建 |
| 7.1 | OS安装及OS Tunning |
| 7.2 | 集群创建 |
| 7.3 | ArgoCD安装(使用ansible) |
| 7.4 | Longhorn安装 |
| 7.5 | K8S组件部署(在执行argocd安装的master node上获取组件yaml文档,并上传至gitlab) |
| 8 | Vault设定 |
| 8.1 | 部署档案 |
| 8.2 | 防火墙:申请whq vault-dev servers访问WZS K8S Cluster API server的6443端口 ; |
| 8.3 | 测试部署验证vault是否正常 https://cloud-guidebook.wistron.com/platform/HashiCorp-Vault/COGAdmin-on-k8s-connection-validation/#deployment |
| 9 | WiCOP设定 |
| 9.1 | 在WiCOP上新增对应集群:1.登陆WiCOP; 2.选择Application Forms,找到Cluster Management,点击Add填写对应集群的信息 |
| 9.2 | 请WiCOP管理员Tby Chung建立该集群的Plant Code,用户才能申请IBG/IBU |
| 10 | Cloud guidebook记录集群信息 |
| 10.1 | 在gitlab上新增集群信息 |
| 10.2 | 在上查看是否生效 |
| 11 | 周边系统建制 |
| 11.1 | Minio搭建 |
| 11.2 | Nifi搭建 |
| 11.3 | Windows Server搭建 |